frst scan und addition frst
Code:
Alles auswählen Aufklappen ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-05-2025
durchgeführt von Razer (Administrator) auf DESKTOP-HQE06JL (Razer Blade Pro) (17-05-2025 16:36:43)
Gestartet von C:\Users\Razer\Desktop\FRST64.exe
Geladene Profile: Razer
Plattform: Microsoft Windows 10 Home Version 22H2 19045.5854 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <30>
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <3>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18392048 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [599056 2021-10-28] (Razer USA Ltd. -> Razer Inc.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543368 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2024-01-04] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2024-01-04] (Adobe Inc. -> )
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [f.lux] => C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-21] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {8ac3498c-fe3c-11ee-b305-8c885b4408ae} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c403f-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c40b7-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2023-12-08] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\136.0.7103.114\Installer\chrmstp.exe [2025-05-15] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.102\Installer\chrmstp.exe [2025-05-15] (Brave Software, Inc. -> Brave Software, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {07809AE6-8619-48A1-A235-D392BB8D319B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.12\WatchDog.exe [1156400 2025-03-25] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.12\repair
Task: {93FA61C4-7EE9-48E5-BD0E-5279B003DEDA} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5960488 2025-05-14] (Microsoft Windows -> Microsoft Corporation)
Task: {26A111F6-A64A-40C7-B20D-4106F35E3416} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86684041-FEB2-4712-873A-2FC67BA26860} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F041E7B-ECF7-499B-A090-4969DF2C0978} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B4F1AB8-9831-4774-A1E8-C47E9B2774D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpDomain] fritz.box
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-12]
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-12]
Edge Extension: (Edge relevant text changes) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default [2025-05-17]
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/"
CHR Extension: (OneTab) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-06-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-13]
CHR Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-05-02]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-26]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-17]
CHR Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-14]
CHR Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-13]
CHR Extension: (Bearly.ai) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkennebljmnnpimcgdjlocbncpamgipp [2024-01-06]
CHR Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
CHR Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-27]
CHR Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2 [2025-05-15]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-18]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-08-18]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-18]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-18]
CHR Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-02-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-05]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\System Profile [2025-05-17]
CHR HKU\S-1-5-21-3644930430-3491832035-840970103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fjoaledfpmneenckfbpdfhkmimnjocfa]
Brave:
=======
BRA Profile: C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-05-17]
BRA Extension: (OneTab) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-11-11]
BRA Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-13]
BRA Extension: (BlockSite: Block Websites & Stay Focused) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2025-05-05]
BRA Extension: (Feed Blocker for Professionals) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eikaafmldiioljlilngpogcepiedpenf [2025-04-30]
BRA Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
BRA Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-04-30]
BRA Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-17]
BRA Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-14]
BRA Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
BRA Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-11-11]
BRA Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-15]
BRA Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
BRA Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
BRA Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-05]
BRA Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-05-17]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-05-17]
BRA Extension: (Brave NTP background images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-04-25]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-05-17]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-05-17]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2025-05-05]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-05-14]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2024-11-11]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-05-17]
BRA Extension: (Brave Ads Resources) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\jcncoheihebhhiemmbmpfhkceomfipbj [2025-03-25]
BRA Extension: (Brave Ad Block Updater (EasyList Germany (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfmefmifdjlfneapckmpkinmlofjehbp [2025-05-17]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-03-25]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\obbokncgfcbepeipkhpdepjjoncelefj [2025-05-17]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2024-01-04] (Adobe Inc. -> Adobe Inc.)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.102\elevation_service.exe [3157520 2025-05-15] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
S2 CortexLauncherService; C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe [711304 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [107164352 2025-04-18] (Electronic Arts, Inc. -> Electronic Arts)
S2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2500072 2025-03-26] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
S2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2023-10-26] (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert]
S2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2484992 2018-09-04] (Rivet Networks LLC -> Rivet Networks)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9406208 2025-05-04] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
S4 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-08-09] (nordvpn s.a. -> nordvpn S.A.)
S2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe [1275560 2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
S2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [755008 2025-03-25] (Bitdefender SRL -> Bitdefender)
S2 QcomWlanSrv; C:\Windows\System32\drivers\QcomWlanSrvx64.exe [189768 2022-11-09] (Qualcomm Atheros, Inc. -> )
S2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
S2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
S2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256256 2024-10-15] (Razer USA Ltd. -> Razer Inc)
S2 Razer Game Manager Service 3; C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe [364800 2024-12-12] (Razer USA Ltd. -> Razer Inc)
S2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300168 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
S2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [513672 2025-03-06] (Razer USA Ltd. -> Razer Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xTendSoftAPService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
S2 xTendUtilityService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
S2 GoogleUpdaterInternalService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update-internal [X]
S2 GoogleUpdaterService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 glidetpd; C:\Windows\System32\drivers\glidetpd.sys [32248 2017-09-01] (Microsoft Windows Hardware Compatibility Publisher -> Cirque Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iaLPSS2_GPIO2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_skl.inf_amd64_2a35efc43f1a612e\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_uart2_skl.inf_amd64_a59239db7de9954f\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [154752 2018-09-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [331168 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [234072 2025-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [22120 2025-03-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NDivert; C:\Program Files\NordVPN\7.32.5.0\Drivers\NDivert.sys [131472 2024-10-31] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2023-01-17] (nordvpn s.a. -> TEFINCOM S.A.)
R3 ovpn-dco; C:\Windows\System32\drivers\ovpn-dco.sys [91584 2024-06-05] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52240 2017-07-19] (Razer USA Ltd. -> Razer Inc)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [41120 2024-08-29] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-04-15] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [605576 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
S3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz158; \??\C:\Windows\temp\cpuz158\cpuz158_x64.sys [X] <==== ACHTUNG
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Drei Monate (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-17 16:36 - 2025-05-17 16:37 - 000030095 _____ C:\Users\Razer\Desktop\FRST.txt
2025-05-17 16:36 - 2025-05-17 16:36 - 002405888 _____ (Farbar) C:\Users\Razer\Desktop\FRST64.exe
2025-05-17 16:36 - 2025-05-17 16:36 - 000000000 ____D C:\FRST
2025-05-17 16:32 - 2025-05-17 16:32 - 000004745 _____ C:\Users\Razer\Desktop\FMRS_2025_05_17__16_31_28.txt
2025-05-17 16:32 - 2025-05-17 16:32 - 000004745 _____ C:\FMRS_2025_05_17__16_31_28.txt
2025-05-16 20:00 - 2025-05-16 20:00 - 000021768 _____ C:\Users\Razer\Desktop\aMVv0bx_460swp.webp
2025-05-16 19:30 - 2025-05-16 19:30 - 000001912 _____ C:\Users\Razer\Desktop\kprm-20250516193040.txt
2025-05-16 19:30 - 2025-05-16 19:30 - 000000000 ____D C:\KPRM
2025-05-15 22:58 - 2025-05-15 22:58 - 000228701 _____ C:\Users\Razer\Desktop\call 15.5.25 ek4u.pdf
2025-05-15 22:56 - 2025-05-15 22:56 - 000094458 _____ C:\Users\Razer\Desktop\870f3ff1-9fc3-4168-8b66-e164458a10a1_60757005-dda2-4b1c-852b-8f208ae9ea56.webp
2025-05-15 21:54 - 2025-05-15 21:55 - 000000000 ____D C:\Users\Razer\Desktop\audio spurcalls
2025-05-15 19:05 - 2025-05-15 21:03 - 000003854 _____ C:\Users\Razer\Desktop\15.5.25 call ek4u.txt
2025-05-15 16:24 - 2025-05-15 16:24 - 000092757 _____ C:\Users\Razer\Desktop\ADHD Supplemente für mehr Drive & Motivation.pdf
2025-05-15 14:55 - 2025-05-15 14:55 - 000033953 _____ C:\Users\Razer\Desktop\The Best Supplements That ACTUALLY Increase Motivation.pdf
2025-05-15 14:47 - 2025-05-15 14:47 - 027329288 _____ C:\Users\Razer\Desktop\The Best Supplements That ACTUALLY Increase Motivation.mp4
2025-05-15 14:33 - 2025-05-15 14:33 - 000067345 _____ C:\Users\Razer\Desktop\HDI schreiben beschwerde beitrags erhöhung.pdf
2025-05-14 15:28 - 2025-05-16 19:30 - 000000000 ____D C:\Users\Razer\AppData\Local\ESET
2025-05-14 15:24 - 2025-05-16 19:30 - 000000000 ____D C:\Users\Razer\Desktop\Trojaner Board
2025-05-14 13:08 - 2025-05-14 13:09 - 000000000 ____D C:\Users\Razer\Desktop\skoda 2007 modell
2025-05-14 11:30 - 2025-05-14 11:30 - 000022680 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-05-14 11:29 - 2025-05-14 11:29 - 000022680 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2025-05-14 11:24 - 2025-05-14 11:24 - 000000000 ___HD C:\$WinREAgent
2025-05-13 21:34 - 2025-05-17 16:31 - 000003656 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-05-13 21:32 - 2025-05-13 21:32 - 001426275 _____ (<hxxps://furtivex.net>) C:\Users\Razer\Downloads\FMRS.exe
2025-05-13 19:22 - 2025-05-13 19:22 - 000000000 ____D C:\Users\Razer\AppData\Roaming\GlarySoft
2025-05-13 19:21 - 2025-05-13 19:21 - 008741128 _____ (Glarysoft Ltd) C:\Users\Razer\Downloads\ausetup.exe
2025-05-13 19:20 - 2025-05-13 19:22 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Absolute Uninstaller.lnk
2025-05-13 19:20 - 2025-05-13 19:22 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2025-05-13 19:20 - 2025-05-13 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2025-05-13 17:03 - 2025-05-13 17:03 - 000048039 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (1).pdf
2025-05-13 16:59 - 2025-05-13 13:58 - 055994157 _____ C:\Users\Razer\Desktop\AQ A2 Großsysteme und Kaskaden Ausdruck 1.pdf
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\Users\Razer\AppData\LocalLow\Intel
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\ProgramData\Intel
2025-05-12 17:43 - 2025-05-12 17:43 - 000573811 _____ C:\Users\Razer\Desktop\an7En4q_460svav1.mp4
2025-05-12 16:55 - 2025-05-12 16:55 - 000001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001011 _____ C:\Users\Public\Desktop\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001004 _____ C:\Users\Public\Desktop\PDF24 Toolbox.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000001481 _____ C:\Users\Public\Desktop\Foxit PDF Reader.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2025-05-12 16:52 - 2025-05-12 16:52 - 000001032 _____ C:\Users\Razer\Desktop\Telegram.lnk
2025-05-12 16:52 - 2025-05-12 16:52 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2025-05-12 16:51 - 2025-05-12 16:51 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-12 14:45 - 2025-05-12 14:45 - 000086375 _____ C:\Users\Razer\Desktop\bahnfahrt kiel hannover hin-rückfahrt.pdf
2025-05-09 19:22 - 2025-05-09 20:52 - 000001064 _____ C:\Users\Razer\Desktop\9.5.25 call ek4u.txt
2025-05-04 20:38 - 2025-05-04 20:38 - 000063501 _____ C:\Users\Razer\Downloads\bahncard bescherde teil 2.pdf
2025-05-02 14:51 - 2025-03-25 15:23 - 003007011 _____ C:\Users\Razer\Desktop\Angebot_11,4kW_Wärmepumpe_Familie Alms.pdf
2025-04-28 15:39 - 2025-04-28 16:31 - 000000163 _____ C:\Users\Razer\Desktop\thomas Machacek.txt
2025-04-26 16:08 - 2025-04-26 16:08 - 000041613 _____ C:\Users\Razer\Downloads\manu 25.pdf
2025-04-26 15:07 - 2025-04-26 16:11 - 000001141 _____ C:\Users\Razer\Desktop\manu fc25.txt
2025-04-20 11:41 - 2025-04-20 11:41 - 000105948 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (2).pdf
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000478384 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000374960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 001259648 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000674992 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000509104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 026001536 _____ C:\Windows\system32\nvidia-pcc.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 002313872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001713816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001569448 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001220784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001053312 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 000942224 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 000810128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 023033472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 000467064 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2025-04-17 21:18 - 2025-04-14 08:08 - 020517016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 007323280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005913744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005239936 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 003993752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 000853144 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2025-04-17 21:18 - 2025-04-14 08:06 - 005601032 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2025-04-17 21:18 - 2025-04-14 08:06 - 004902688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2025-04-17 21:18 - 2025-04-12 14:25 - 000142952 _____ C:\Windows\system32\nvinfo.pb
2025-04-17 19:03 - 2025-04-17 20:42 - 000004132 _____ C:\Users\Razer\Desktop\call 17.4.25 ek4u.txt
2025-04-16 12:28 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Desktop\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:27 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Downloads\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:01 - 2025-04-16 12:01 - 000114990 _____ C:\Users\Razer\Downloads\Q1 2025 - Tabellenblatt1.pdf
2025-04-15 10:47 - 2025-04-15 10:47 - 000001133 _____ C:\Users\Public\Desktop\Razer Axon.lnk
2025-04-15 09:56 - 2025-04-15 09:56 - 000001430 _____ C:\Users\Razer\Desktop\NVIDIA App (2).lnk
2025-04-15 09:17 - 2025-04-15 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-04-15 09:17 - 2025-04-07 18:14 - 003114016 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2025-04-15 09:17 - 2025-04-07 18:14 - 002403360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000180760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000159768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2025-04-15 08:59 - 2025-04-15 09:03 - 845040656 _____ (NVIDIA Corporation) C:\Users\Razer\Downloads\572.83-desktop-win10-win11-64bit-international-dch-whql.exe
2025-04-15 08:36 - 2025-04-15 10:28 - 000000000 ____D C:\Users\Razer\AppData\Local\EA SPORTS FC 25
2025-04-14 22:46 - 2025-04-14 22:46 - 003018368 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_ek4u.pdf
2025-04-14 13:40 - 2025-04-14 13:41 - 002114907 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_final.pdf
2025-04-14 13:28 - 2025-04-14 13:28 - 003044421 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu (1).pdf
2025-04-14 13:28 - 2025-04-14 13:27 - 001572973 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213 (1).pdf
2025-04-14 13:26 - 2025-04-14 13:26 - 005199333 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_1216.pdf
2025-04-13 21:30 - 2025-04-13 21:30 - 000142816 _____ C:\Users\Razer\Downloads\Werbebrief PV & WP variante 2.pdf
2025-04-13 20:34 - 2025-04-13 20:34 - 004670519 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213.pdf
2025-04-13 20:29 - 2025-04-13 20:29 - 003804639 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu.pdf
2025-04-12 19:24 - 2025-04-12 19:24 - 000139231 _____ C:\Users\Razer\Downloads\Werbebrief PV & WP variante 1.pdf
2025-04-10 13:49 - 2025-04-10 13:49 - 000093947 _____ C:\Users\Razer\Downloads\Betreff_ Abmahnung wegen nicht umgesetzter Kontoumstellung und unrechtmäßiger Abbuchungen.pdf
2025-04-10 12:42 - 2025-04-10 12:42 - 000142095 _____ C:\Users\Razer\Downloads\🧠✅ So funktioniert die Ivy-Lee-Methode (Schritt für Schritt)_.pdf
2025-04-09 20:45 - 2025-04-09 20:45 - 000000000 ____D C:\inetpub
2025-04-08 19:01 - 2025-04-08 19:01 - 000199118 _____ C:\Users\Razer\Downloads\📘 1. Beratungsleitfaden – Wärmepumpe & Photovoltaik (intern oder für Schulung) (1).pdf
2025-04-08 17:23 - 2025-04-08 17:23 - 000197308 _____ C:\Users\Razer\Downloads\📘 1. Beratungsleitfaden – Wärmepumpe & Photovoltaik (intern oder für Schulung).pdf
2025-04-08 17:11 - 2025-04-08 17:11 - 000001941 _____ C:\Users\Razer\Downloads\sehtest_-_beratung.ics
2025-04-08 11:18 - 2025-04-08 11:20 - 000000000 ____D C:\Users\Razer\Desktop\Tools - EXE Daten usw
2025-04-08 11:18 - 2024-09-10 22:44 - 000002082 _____ C:\Users\Razer\Desktop\Travel In A Space Pod.lnk
2025-04-07 18:08 - 2025-04-07 18:08 - 000083048 _____ C:\Users\Razer\Downloads\Eckdaten zur ersteinschätzung für Wärmepumpe und Photovoltaik.pdf
2025-04-07 17:19 - 2025-04-29 19:27 - 000000000 ____D C:\Users\Razer\Desktop\BERUFLICH
2025-04-07 17:16 - 2025-05-17 12:09 - 000000000 ____D C:\Users\Razer\Desktop\PRIVAT
2025-04-07 14:29 - 2025-04-07 14:29 - 001193632 _____ C:\Users\Razer\Downloads\Angebot_KV_10048909687882_07.02.2025.pdf
2025-04-02 11:32 - 2025-04-02 11:32 - 018559671 _____ C:\Users\Razer\Downloads\video machacek.MP4
2025-03-28 15:54 - 2025-03-28 15:54 - 007597053 _____ C:\Users\Razer\Downloads\Leo 1-[AudioTrimmer.com].m4a
2025-03-28 15:45 - 2025-03-28 15:47 - 000123460 _____ C:\Users\Razer\Downloads\ERWEITERT Vergleich von Günstigen und Hochwertigen Wärmepumpen.pdf
2025-03-28 10:42 - 2025-03-28 10:42 - 000000709 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Energiefox Angebote.lnk
2025-03-25 21:08 - 2025-03-25 21:08 - 000068083 _____ C:\Users\Razer\Downloads\GEP Netzbetreiber Vollmacht Jochen Witt.pdf
2025-03-25 15:20 - 2025-03-25 15:21 - 003007011 _____ C:\Users\Razer\Downloads\Angebot_11,4kW_Wärmepumpe_Familie Alms.pdf
2025-03-25 15:20 - 2025-03-25 15:21 - 000900834 _____ C:\Users\Razer\Downloads\Angebot_Energieberatung_Familie Alms.pdf
2025-03-24 10:35 - 2025-03-24 10:35 - 001209034 _____ C:\Users\Razer\Downloads\Angebot_Energieberatung_Manuel Alms.pdf
2025-03-23 23:06 - 2025-03-23 23:07 - 302022656 _____ C:\Users\Razer\Downloads\sejda-desktop_7.8.3_x64.msi
2025-03-23 22:58 - 2025-03-23 22:58 - 003793424 _____ C:\Users\Razer\Downloads\Angebot_11,4kW_Manuel Alms.pdf
2025-03-19 21:20 - 2025-03-19 21:20 - 014845665 _____ C:\Users\Razer\Downloads\Angebot Familie Hecht.pdf
2025-03-18 19:35 - 2025-03-18 19:35 - 000000027 _____ C:\Windows\system32\ctc.json
2025-03-12 23:06 - 2025-03-12 23:08 - 000000000 ____D C:\Users\Razer\AppData\Local\Notepad
2025-03-12 14:15 - 2025-03-12 14:15 - 000021257 _____ C:\Users\Razer\.pdfbox.cache
2025-03-11 15:29 - 2025-03-11 15:29 - 004029584 _____ C:\Users\Razer\Downloads\Thomas_Uplegger_14,5kW.pdf
2025-03-05 11:16 - 2025-03-25 20:43 - 000000000 ____D C:\Users\Razer\AppData\Local\PDF24
2025-03-05 11:15 - 2025-03-05 11:15 - 002271004 _____ C:\Users\Razer\Downloads\Auftrag Wärmepumpe unter Vorbehalt jochen witt.pdf
2025-03-01 17:39 - 2025-05-12 16:55 - 000000000 ____D C:\Program Files\PDF24
2025-02-27 22:20 - 2025-02-27 22:20 - 004019712 _____ C:\Users\Razer\Downloads\Jens_Thun_14,8kW.pdf
2025-02-27 22:20 - 2025-02-27 22:20 - 001293179 _____ C:\Users\Razer\Downloads\Jens_Thun_Energieberatung.pdf
2025-02-20 20:04 - 2025-02-20 20:05 - 000000000 ____D C:\ProgramData\BDLogging
2025-02-19 22:11 - 2025-02-19 22:11 - 005420653 _____ C:\Users\Razer\Downloads\Angebot AN-2502-913 neuer Preis_signiert.pdf
2025-02-19 13:03 - 2025-02-19 13:03 - 000159878 _____ C:\Users\Razer\Downloads\Einnahemn & Ausgaben Q4.xlsx
2025-02-19 13:03 - 2025-02-19 13:03 - 000115545 _____ C:\Users\Razer\Downloads\Einnahemn & Ausgaben Q4.pdf
==================== Drei Monate (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-17 16:34 - 2023-09-25 12:33 - 000000000 ____D C:\Users\Razer\AppData\Local\D3DSCache
2025-05-17 16:32 - 2022-09-08 05:15 - 000000000 ____D C:\Windows\SystemTemp
2025-05-17 16:31 - 2023-09-25 12:18 - 000000000 ____D C:\ProgramData\NVIDIA
2025-05-17 16:28 - 2024-12-22 22:53 - 000000000 ____D C:\Users\Razer\AppData\Local\Malwarebytes
2025-05-17 16:27 - 2023-09-25 12:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-05-17 16:27 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-17 15:42 - 2023-09-25 12:23 - 000000000 __SHD C:\Users\Razer\IntelGraphicsProfiles
2025-05-17 12:08 - 2023-12-29 18:27 - 000000000 ____D C:\Program Files\Electronic Arts
2025-05-17 12:08 - 2023-09-25 12:28 - 000000000 ____D C:\ProgramData\Package Cache
2025-05-17 10:19 - 2023-09-25 12:08 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-16 19:22 - 2023-09-25 12:13 - 000002395 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-15 22:32 - 2023-09-27 23:24 - 000000000 ____D C:\Users\Razer\AppData\Roaming\vlc
2025-05-15 22:22 - 2023-09-27 19:36 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-05-15 22:14 - 2024-11-11 12:59 - 000002356 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2025-05-15 19:03 - 2023-09-25 12:14 - 000000000 ____D C:\Users\Razer\AppData\Local\Packages
2025-05-15 17:01 - 2023-09-25 12:14 - 001622274 _____ C:\Windows\system32\PerfStringBackup.INI
2025-05-15 17:01 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-05-15 16:53 - 2023-09-25 12:22 - 000000000 ____D C:\Intel
2025-05-15 16:53 - 2023-09-25 12:08 - 000008192 ___SH C:\DumpStack.log.tmp
2025-05-15 16:53 - 2023-09-25 12:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-05-15 16:53 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2025-05-15 16:28 - 2023-09-27 20:03 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2025-05-14 15:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-05-14 15:03 - 2023-09-25 12:08 - 000270032 _____ C:\Windows\system32\FNTCACHE.DAT
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-05-14 15:02 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2025-05-14 12:33 - 2023-09-25 12:18 - 000000000 ____D C:\Windows\system32\MRT
2025-05-14 12:30 - 2023-09-25 12:17 - 214836568 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-05-14 11:33 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-05-14 11:29 - 2023-09-25 12:11 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-05-13 12:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Telegram Desktop
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2025-05-12 16:51 - 2025-01-24 21:30 - 000000000 ____D C:\Program Files\dotnet
2025-05-12 16:51 - 2023-09-27 19:52 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Zoom
2025-05-12 16:40 - 2023-12-26 22:55 - 000000000 ____D C:\Program Files (x86)\Steam
2025-05-12 16:40 - 2023-09-25 14:20 - 000000000 ____D C:\Users\Razer\AppData\Local\CrashDumps
2025-05-02 14:12 - 2024-01-04 13:06 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2025-05-02 14:12 - 2024-01-04 13:06 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-04-26 19:54 - 2023-12-29 18:27 - 000000000 ____D C:\ProgramData\Packer
2025-04-25 21:40 - 2023-09-25 12:14 - 000000000 ____D C:\ProgramData\Packages
2025-04-25 21:39 - 2023-09-25 12:17 - 000000000 ____D C:\Users\Razer\AppData\Local\PlaceholderTileLogoFolder
2025-04-25 10:45 - 2023-10-31 09:40 - 000000000 ____D C:\Program Files\NordUpdater
2025-04-25 08:21 - 2023-09-27 19:38 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA
2025-04-17 21:22 - 2023-09-26 12:04 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== BCD ================================
Start-Manager für Firmware
--------------------------
Bezeichner {fwbootmgr}
displayorder {bootmgr}
{7c7acd1d-5b93-11ee-a718-e7988c26e0b6}
{a2cefc86-5b8b-11ee-b2e6-806e6f6e6963}
{a2cefc87-5b8b-11ee-b2e6-806e6f6e6963}
{a2cefc88-5b8b-11ee-b2e6-806e6f6e6963}
timeout 0
Windows-Start-Manager
---------------------
Bezeichner {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale de-DE
inherit {globalsettings}
default {current}
resumeobject {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {7c7acd1d-5b93-11ee-a718-e7988c26e0b6}
device unknown
description UEFI: Intenso, Partition 1
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc86-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:CD/DVD Drive
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc87-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:Removable Device
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc88-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:Network Device
Windows-Startladeprogramm
-------------------------
Bezeichner {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale de-DE
inherit {bootloadersettings}
recoverysequence {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
nx OptIn
bootmenupolicy Standard
Windows-Startladeprogramm
-------------------------
Bezeichner {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{7c7acd21-5b93-11ee-a718-e7988c26e0b6}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale de-de
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{7c7acd21-5b93-11ee-a718-e7988c26e0b6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Wiederaufnahme aus dem Ruhezustand
----------------------------------
Bezeichner {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale de-DE
inherit {resumeloadersettings}
recoverysequence {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows-Speichertestprogramm
----------------------------
Bezeichner {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Windows-Speicherdiagnose
locale de-DE
inherit {globalsettings}
badmemoryaccess Yes
EMS-Einstellungen
-----------------
Bezeichner {emssettings}
bootems No
Debuggereinstellungen
---------------------
Bezeichner {dbgsettings}
debugtype Local
RAM-Defekte
-----------
Bezeichner {badmemory}
Globale Einstellungen
---------------------
Bezeichner {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Startladeprogramm-Einstellungen
-------------------------------
Bezeichner {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisoreinstellungen
-----------------------
Bezeichner {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Einstellungen zur Ladeprogrammfortsetzung
-----------------------------------------
Bezeichner {resumeloadersettings}
inherit {globalsettings}
Geräteoptionen
--------------
Bezeichner {7c7acd21-5b93-11ee-a718-e7988c26e0b6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume5
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Ende von FRST.txt ========================
addition
Code:
Alles auswählen Aufklappen ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17-05-2025
durchgeführt von Razer (17-05-2025 16:38:40)
Gestartet von C:\Users\Razer\Desktop
Microsoft Windows 10 Home Version 22H2 19045.5854 (X64) (2023-09-25 10:09:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-3644930430-3491832035-840970103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3644930430-3491832035-840970103-503 - Limited - Disabled)
Gast (S-1-5-21-3644930430-3491832035-840970103-501 - Limited - Disabled)
Razer (S-1-5-21-3644930430-3491832035-840970103-1001 - Administrator - Enabled) => C:\Users\Razer
WDAGUtilityAccount (S-1-5-21-3644930430-3491832035-840970103-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Absolute Uninstaller 6.0.1.17 (HKLM-x32\...\Absolute Uninstaller) (Version: 6.0.1.17 - Glarysoft Ltd)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 25.001.20474 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.1.0.587 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Backuptrans Android iPhone Viber Transfer + (x64) 3.1.86 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Backuptrans Android iPhone Viber Transfer + (x64)) (Version: 3.1.86 - Backuptrans)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.1.1.12 - Bitdefender)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 136.1.78.102 - Die Brave-Autoren)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
f.lux (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Flux) (Version: 4.134 - f.lux Software LLC)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2025.1.0.27937 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 136.0.7103.114 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 14.0.0.310 - Huawei Technologies Co., Ltd.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4815 - Intel Corporation)
Lunatask 1.7.9 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\288d4c26-e1c7-58e9-bf0f-d1c1f6fb9f59) (Version: 1.7.9 - Lunatask)
Malwarebytes version 5.2.11.183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.11.183 - Malwarebytes)
Microsoft .NET Host - 8.0.15 (x64) (HKLM\...\{4C903F19-B4C3-4D0C-8CC9-D444C511AF1C}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.15 (x64) (HKLM\...\{11CCC9F6-77AA-4421-9EAC-BAEC36D96817}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.15 (x64) (HKLM\...\{8731E6E3-AF96-4515-ACEC-DBFB3DF55292}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.76 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.76 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\OneDriveSetup.exe) (Version: 25.075.0420.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM\...\{0E4A7820-FDA4-4250-B7AC-E7A2F7B43B64}) (Version: 64.60.31203 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM-x32\...\{5625bb48-295c-4113-bc92-d6a69b19b04c}) (Version: 8.0.15.34718 - Microsoft Corporation)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.4.6.959 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.32.5.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA FrameView SDK 1.5.10920.35420203 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10920.35420203 - NVIDIA Corporation)
NVIDIA Grafiktreiber 576.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 576.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA-App 11.0.3.232 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.3.232 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project)
PDF24 Creator (HKLM\...\{0C17F9F9-B9AF-483C-A44D-A916BD96D4D1}) (Version: 11.25.1 - geek software GmbH)
Razer Axon (HKLM\...\Razer Axon_is1) (Version: 2.2.1.0 - Razer Inc.)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 11.1.5.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.41 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.10.0315.031117 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8245 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Telegram Desktop (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.13.1 - Telegram FZ-LLC)
Todoist 9.4.0 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\046cc9a8-e645-5367-8486-409093e0b69a) (Version: 9.4.0 - Doist)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VidJuice UniTube Version 6.3.0 (HKLM\...\VidJuice UniTube_is1) (Version: 6.3.0 - Mobee Technology Co., Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vysor (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\vysor) (Version: 5.0.7 - Vysor Inc.)
WinRAR 6.23 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH)
Zoom Workplace (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\ZoomUMX) (Version: 6.4.6 (64360) - Zoom Communications, Inc.)
Chrome apps:
============
Do this to get fit (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\20e6337838ae477ae9341eac29308866) (Version: 1.0 - Google\Chrome)
Dokumente (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\720be21a2e6fc6834597b7f341384a96) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\13d13583ddb177c4c405f54cde512a21) (Version: 1.0 - Google\Chrome)
Google Drive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\67de23052a953a94dbdeca31011ef84a) (Version: 1.0 - Google\Chrome)
Präsentationen (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\99d49a267397ad4733ccdff094476e82) (Version: 1.0 - Google\Chrome)
Sheets (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\fd72a94144682c8168ad4fe559194f89) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\5442e3780cba0a36baf1951da45b0cdf) (Version: 1.0 - Google\Chrome)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-01-04] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2024-01-04] (Adobe Systems Incorporated)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-04-17] (NVIDIA Corp.)
Spotify – Musik und Podcasts -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0 [2025-05-13] (Spotify AB) [Startup Task]
Trello -> C:\Program Files\WindowsApps\45273LiamForsyth.PawsforTrello_2.15.7.0_x64__7pb5ddty8z1pa [2025-02-14] (Trello, Inc.)
TvMate IPTV Pro -> C:\Program Files\WindowsApps\HFRTECHLLC.TiviMateIPTVPro_1.0.8.0_x64__ef2a51g56xear [2025-04-25] (HFR TECH LLC)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm [2025-05-13] (WhatsApp Inc.) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-DE72DEDCB3B1} -> [Creative Cloud Files] => C:\Users\Razer\Creative Cloud Files [2024-01-04 12:55]
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> nordvpn S.A.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{995f8d89-8ab5-dd20-098d-b9419e93fd76}\localserver32 -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer USA Ltd. -> Razer Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxDTCM.dll [2022-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\nvshext.dll [2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Phillip Marco - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Sheets.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Profil 2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2025-04-15 09:24 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2025-04-15 09:17 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\localhost -> localhost
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 11:14 - 2025-05-15 16:28 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
2024-09-11 14:36 - 2024-09-11 14:36 - 000000374 _____ C:\Windows\system32\drivers\etc\hosts.ics
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Users\Razer\AppData\Local\Microsoft\WindowsApps;C:\Users\Razer\Desktop\scrcpy-win64-v2.3.1;C:\Program Files\dotnet\;C:\Program Files\NVIDIA Corporation\NVIDIA App\NvDLISR
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
Network Binding:
=============
WLAN: Killer Wireless-n/a/ac 1535 Wireless Network Adapter -> Qcamain10x64.sys
LAN-Verbindung: TAP-NordVPN Windows Adapter V9 -> tapnordvpn.sys
OpenVPN Data Channel Offload for NordVPN: OpenVPN Data Channel Offload -> ovpn-dco.sys
Ethernet: Killer E2500 Gigabit Ethernet Controller -> e2xw10x64.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
NordLwf: NordVPN LightWeight Firewall
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [TCP Query User{43F61300-8B18-427A-9BF6-C957A1AEF92F}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [UDP Query User{A7FF9341-7F0A-410C-AB87-EEDD37C81CCC}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [TCP Query User{DB77BF52-9014-446E-87E4-9564F0E97374}C:\users\razer\appdata\roaming\zoom\bin\zoom.exe] => (Block) C:\users\razer\appdata\roaming\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [UDP Query User{4B63423C-18A5-46D9-B1AB-E55D1FDCC21C}C:\users\razer\appdata\roaming\zoom\bin\zoom.exe] => (Block) C:\users\razer\appdata\roaming\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
==================== Wiederherstellungspunkte =========================
04-05-2025 16:38:34 Geplanter Prüfpunkt
12-05-2025 14:55:18 Geplanter Prüfpunkt
12-05-2025 21:07:39 Piriform Driver Updater Restore Point
13-05-2025 21:34:00 Furtivex Malware Removal Script
14-05-2025 11:24:38 Windows Modules Installer
14-05-2025 11:25:38 Windows Modules Installer
17-05-2025 12:08:35 Glarysoft Uninstaller Restore Point
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Qualcomm Atheros QCA61x4 Bluetooth
Description: Qualcomm Atheros QCA61x4 Bluetooth
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm
Service: BTHUSB
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Systemfehler:
=============
Error: (05/17/2025 04:32:32 PM) (Source: DCOM) (EventID: 10000) (User: DESKTOP-HQE06JL)
Description: Ein DCOM-Server konnte nicht gestartet werden: {85DE1C45-2C66-101B-B02E-04021C009402}. Fehler:
"2147942402"
Aufgetreten beim Start dieses Befehls:
"C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe" -Embedding
Windows Defender:
================
Date: 2025-05-14 11:56:32
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-13 12:50:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-12 14:40:54
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-09 13:01:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-08 12:19:12
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2024-11-02 11:58:48
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Aktuell
Error Code: 0x80501102
Error description: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support".
Security intelligence Version: 1.421.56.0;1.421.56.0
Engine Version: 1.1.24090.11
Date: 2023-10-28 22:47:00
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Netzwerkinspektionssystem
Error Code: 0x8007041d
Error description: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Reason: Dem System fehlen erforderliche Updates zum Ausführen des Netzwerkinspektionssystems. Installieren Sie die erforderlichen Updates, und starten Sie das Gerät neu.
CodeIntegrity:
===============
Date: 2025-04-15 10:49:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4a38014ac4bdce40\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2025-02-09 11:05:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Razer 2.02 02/22/2018
Hauptplatine: Razer Blade Pro
Prozessor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Prozentuale Nutzung des RAM: 56%
Installierter physikalischer RAM: 16273.64 MB
Verfügbarer physikalischer RAM: 7099.73 MB
Summe virtueller Speicher: 31633.64 MB
Verfügbarer virtueller Speicher: 21586.35 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.86 GB) (Free:565.28 GB) (Model: CT1000P3SSD8) NTFS
Drive d: (Blade Pro HDD) (Fixed) (Total:1863.02 GB) (Free:839.55 GB) (Model: ST2000LM015-2E8174) NTFS
\\?\Volume{5d2e59dd-e3c9-464c-99d4-d93203f4e136}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{8c4d2e74-a499-457d-bf77-d724eee8446c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 580F63EA)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
17.05.2025, 17:03
Baum-Darstellung